Often in breach response, security professionals focus on the technical aspects of the attack. Yet, the non-technical aspects are often more insidious, says Teju Shyamsundar of Okta. And Identity can be a powerful tool to bolster defenses.
The digital revolution has given healthcare organizations new tools to increase team efficiency and improve their customer experience. But it's also opened up new vectors that cybercriminals can use to attack. As your attack surface expands to infrastructure that you don't own or control, becomes increasingly...
A key amendment to Canada's Personal Information Protection and Electronic Documents Act goes into effect on Nov. 1. What are the baseline standards for compliance, and how does this change impact risk transfer and mitigation?
While PIPEDA is not a new law and been on the books for a long time, what is coming is...
2018 has been an important year in Canada from a cybersecurity and privacy standpoint. The introduction of Canada's new National Cybersecurity Strategy in June of this year along with the upcoming mandatory breach notification requirements effective November 1, 2018 are just the tip of the iceberg. In a complex world...
On May 25, 2018, per the General Data Protection Regulation (GDPR), organizations with business ties to the European Union needed to comply to GDPR standards. The cost of non-compliance are stiff fines. The GDPR contains nearly 100 separate and nuanced articles that can be difficult to understand even if you are a...
The future of security is not all gloom and doom. We've learned important lessons over the past decade that can become your prescriptions for action.
Download this report to learn about these focus areas that will let you sleep at night:
Apps are the number one target, so shift your focus to the targets, and...
Money laundering: a crime as old as currency itself. It represents between two and five percent of global Gross Domestic Product (GDP)*. Cyber crime and money laundering are growing and evolving at a faster rate than many organizations can keep pace with, especially while staying within regulatory requirements. The...
We are in the age of mass data compromise. The growing, never-ending cycle of breach, fraud loss and the decline of customer experience characterizes life in today's globally connected digital world. Unfortunately, with crime rings amplifying their efforts and continuing to evolve these threats aren't going anywhere....
Finding an effective breach prevention provider is critical in order to safeguard an organization's assets. NSS Labs subjected nine cybersecurity market leaders to comprehensive, rigorous testing to determine how well each product handled current advanced threats and attack methods. All vendor products were evaluated...
This US aerospace research and development organization tackles one of the most ambitious engineering projects in the world - the design and creation of space exploration vehicles capable of transporting people into orbit.Their biggest security challenge was remaining vigilant and adapting to new threats while being...
As one of the top 20 largest providers of information technology services to the financial services industry, the company in this case study spends a considerable amount of time and resources ensuring that both its data and its customers' data is secure.
Due to the tremendous amount of time involved in detecting...
In today's dynamic threat landscape, "real-time" is the operative phrase - and it needs to apply both to threat detection and incident response. But what are the required security controls and tools?
Download this eBook on real-time capabilities and learn:
What's at risk for organizations that lack these tools and...
Will the Equifax breach upend the rules of the data breach notification game? Will it even be discussed in another year? Already, the breach is leading to tough questions about how personal data gets stored, sold and secured - or not - in the United States. Equifax also should consider itself lucky that it didn't lose...
The European Union's General Data Protection Regulation has been the buzz of 2017, and security leaders globally understand the regulation's basics, including the 72-hour breach reporting mandate, the May 2018 enforcement date and the noncompliance penalty of up to 4 percent of annual global revenue or 20 million...
Status check: With just several months to go until any organization that handles Europeans' personal data must comply with the EU's General Data Protection Regulation, or GPDR, how prepared are organizations? While the May 25, 2018, enforcement date is fast approaching, EU privacy watchdogs are continuing to issue...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing ffiec.bankinfosecurity.com, you agree to our use of cookies.
